Who We Are
How we collect information
When you place an order on our store, we collect the personal information you give us including your name, address and email address.
Google Analytics: When someone visits our website, we use a third-party service, Google Analytics, to collect standard internet log information and details of visitor behaviour patterns. We do this to find out things such as the number of visitors to the various parts of the site. This information is only processed in a way which does not identify anyone. We do not make, and do not allow Google to make, any attempt to find out the identities of those visiting our website.
How we use your information
Mailing Lists: As part of the registration process for our newsletter emails, we collect personal information. We use that information for a couple of reasons: to tell you about stuff you’ve asked us to tell you about; to contact you if we need to obtain or provide additional information; to check our records are right and to check every now and then that you’re happy and satisfied. We don't sell our email lists with other organisations and businesses.
We use a third-party provider, MailChimp, to deliver our newsletter emails. We gather statistics around email opening and clicks using industry standard technologies to help us monitor and improve our e-newsletter. For more information, please see MailChimp’s privacy notice. You can unsubscribe to general mailings at any time by clicking the unsubscribe link at the bottom of any of our emails or by emailing us on email@example.com.
Payments: Our store is hosted with Create.net. They provide us with the online e commerce platform that allows us to sell our products to you. Your data is stored through Create’s data storage, databases and the general Create website. They store your data on a secure server behind a firewall.
If you choose a direct payment gateway to complete your purchase, then WorldPay or Paypal stores your credit card data. It is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction. After that is complete, your purchase transaction information is deleted. We do not have access to your credit card information.
All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.
We may disclose your personal information if we are required by law to do so or if you violate our Terms of Service.
You are entitled to view, amend, or delete the personal information that we hold. Email your request to our data protection officer Amber at firstname.lastname@example.org.